$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9eae2235-8723-4a71-a528-d691924c22e1.roa File: 9eae2235-8723-4a71-a528-d691924c22e1.roa (raw, json) Hash identifier: HkdA8wYbInmbfiJr3tJbxEQt4vIjb0ppzuxzHcE1mjg= Subject key identifier: 3C:E3:A6:95:0C:8C:D8:9E:DA:C5:CA:00:67:35:ED:FB:41:93:6F:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D7DDF341C3CFB87F1C9220F94CD812F53EDA561 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9eae2235-8723-4a71-a528-d691924c22e1.roa Signing time: Fri 22 Sep 2023 00:00:00 +0000 ROA not before: Fri 22 Sep 2023 00:00:00 +0000 ROA not after: Fri 27 Oct 2023 23:59:59 +0000 asID: 16509 IP address blocks: 162.208.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Sep 2023 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:7d:df:34:1c:3c:fb:87:f1:c9:22:0f:94:cd:81:2f:53:ed:a5:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 22 00:00:00 2023 GMT Not After : Oct 27 23:59:59 2023 GMT Subject: serialNumber=09e51694beb1296b3c606bcb03a940f78af24dd58afca4ff647d4dae91c3505b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:6a:43:49:c6:c5:40:2c:59:32:74:b7:2a:55: 09:ce:1c:51:49:b2:74:20:ee:96:36:ef:6a:e7:fd: 10:b6:4a:0c:9a:b4:58:2a:3b:f5:1e:d2:58:c7:58: c3:2e:e0:21:77:06:b7:41:92:e0:c6:50:c1:02:76: 14:36:24:69:f5:c4:ac:f2:e3:d4:0b:d7:1a:8f:75: 2b:08:27:b4:18:0a:bb:f9:95:10:6b:3d:e0:70:11: 59:be:dc:ae:40:19:78:e2:93:fd:63:11:21:b8:67: 6f:7e:1a:d2:97:e8:c1:78:14:35:e5:23:a6:f3:d7: 36:a9:e6:bd:94:ba:3e:dd:7d:49:7c:ab:ee:c5:58: 94:96:d2:72:69:36:d2:37:40:e1:3a:59:b0:3a:79: f2:75:b3:00:c5:02:40:6b:e6:5b:9b:77:5e:56:44: 12:8a:38:96:fc:e2:d4:b8:00:29:b2:1f:70:92:bc: 80:ba:77:f5:2b:24:cb:9f:47:8a:92:00:c5:5b:14: 78:46:18:ea:31:7f:86:aa:2f:30:98:88:bc:4b:65: 3d:ad:fa:27:8e:ea:b7:d8:73:1d:46:a5:5e:77:d7: 05:fb:fb:8a:d1:8e:51:e0:16:bf:19:23:34:9a:45: 08:88:06:81:0b:7a:98:a9:b1:ae:2c:81:1b:72:e5: 9a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E3:A6:95:0C:8C:D8:9E:DA:C5:CA:00:67:35:ED:FB:41:93:6F:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9eae2235-8723-4a71-a528-d691924c22e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.208.123.0/24 Signature Algorithm: sha256WithRSAEncryption af:4d:10:f9:29:95:bf:f7:1e:46:8e:28:de:40:d8:98:9a:23: dd:f6:55:95:ee:8a:9e:76:62:4d:45:94:35:36:c2:9c:80:83: 7f:34:91:2c:ae:f5:03:2c:b5:d2:62:95:fe:6f:0d:c4:88:c7: e8:5e:d3:47:e6:b6:dd:44:e2:17:2a:a2:c1:f4:12:db:64:e2: 83:8d:2a:fd:b0:3e:b2:41:d3:d5:8c:3a:8d:4a:73:b3:c6:a1: 13:97:f4:1c:0b:97:74:a1:66:42:05:34:c9:23:28:82:a1:db: 32:b1:2c:3a:eb:6c:96:ad:f6:86:0a:8e:8d:6d:f9:87:71:42: 70:fb:4e:5b:cd:a6:43:3b:f7:26:05:49:70:af:fb:23:97:01: d5:9e:16:94:66:b9:02:58:cc:ee:f8:59:fd:28:0e:a5:43:a0: 67:26:2d:df:98:30:da:49:e5:ea:0a:62:74:23:8f:ed:37:ca: ea:c2:1f:f9:6a:6e:77:f9:35:b2:49:cc:0b:65:db:a9:e6:99: d1:13:51:d1:3b:37:4c:ba:ba:e1:93:22:0d:a0:26:05:a0:70: bb:47:73:96:00:1b:a9:0b:b6:7f:73:15:77:e9:75:bd:7f:a9: 0d:79:00:fb:27:fe:65:ad:f2:86:79:06:f2:5d:78:e9:40:b9: e8:9d:42:0a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULX3fNBw8+4fxySIPlM2BL1PtpWEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwOTIyMDAwMDAwWhcNMjMxMDI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWU1MTY5NGJlYjEyOTZiM2M2MDZiY2IwM2E5NDBmNzhh ZjI0ZGQ1OGFmY2E0ZmY2NDdkNGRhZTkxYzM1MDViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJakNJxsVALFkydLcqVQnOHFFJsnQg7pY272rn/RC2Sgya tFgqO/Ue0ljHWMMu4CF3BrdBkuDGUMECdhQ2JGn1xKzy49QL1xqPdSsIJ7QYCrv5 lRBrPeBwEVm+3K5AGXjik/1jESG4Z29+GtKX6MF4FDXlI6bz1zap5r2Uuj7dfUl8 q+7FWJSW0nJpNtI3QOE6WbA6efJ1swDFAkBr5lubd15WRBKKOJb84tS4ACmyH3CS vIC6d/UrJMufR4qSAMVbFHhGGOoxf4aqLzCYiLxLZT2t+ieO6rfYcx1GpV531wX7 +4rRjlHgFr8ZIzSaRQiIBoELepipsa4sgRty5Zo7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPOOmlQyM2J7axcoAZzXt+0GTb3UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllYWUyMjM1LTg3MjMtNGE3MS1hNTI4LWQ2OTE5MjRjMjJlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi0HswDQYJKoZIhvcNAQELBQADggEBAK9NEPkplb/3HkaOKN5A2JiaI932 VZXuip52Yk1FlDU2wpyAg380kSyu9QMstdJilf5vDcSIx+he00fmtt1E4hcqosH0 Ettk4oONKv2wPrJB09WMOo1Kc7PGoROX9BwLl3ShZkIFNMkjKIKh2zKxLDrrbJat 9oYKjo1t+YdxQnD7TlvNpkM79yYFSXCv+yOXAdWeFpRmuQJYzO74Wf0oDqVDoGcm Ld+YMNpJ5eoKYnQjj+03yurCH/lqbnf5NbJJzAtl26nmmdETUdE7N0y6uuGTIg2g JgWgcLtHc5YAG6kLtn9zFXfpdb1/qQ15APsn/mWt8oZ5BvJdeOlAueidQgo= -----END CERTIFICATE-----Generated at Fri Sep 22 17:21:14 2023 by rpki-client on console-ams.rpki-client.org